paul Posted December 29, 2010 Report Share Posted December 29, 2010 A vulnerability was discovered and corrected in git (gitweb): A cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and previous versions allows remote attackers to inject arbitrary web script or HTML code via f and fp variables (CVE-2010-3906). The updated packages have been patched to correct this issue. Link to comment Share on other sites More sharing options...
Recommended Posts